Auditable asset tracking model

ABSTRACT

Techniques for tracking a progression of a therapeutic procedure that is performed by a patient are disclosed. A notification is received from a server computer system. This notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure. After receipt of the notification, a UI is displayed. This UI has a particular visual layout that is designed to facilitate the tracking process. In response to a particular field being selected within the UI, a secret key that de-identifies the patient is accessed. The accessed secret key and a specific image are then encrypted. As a consequence, encrypted data is generated. The encrypted data is then transmitted to the server computer system.

CROSS-REFERENCE TO RELATED APPLICATIONS

This application claims the benefit of and priority to U.S. Provisional Patent Application Ser. No. 63/147,664 filed on Feb. 9, 2021 and entitled “AUDITABLE ASSET TRACKING MODEL,” which application is expressly incorporated herein by reference in its entirety.

BACKGROUND

An “opioid” is a type of pain-relieving drug that interacts with the opioid receptors in a person's cells. Opioids can be made from plants and can also be synthesized in a laboratory. To work, the drug travels through a person's cardiovascular system and attaches to the opioid receptors in a person's brain cells. As a result of this attachment, the cells release signals that effectively stifle the ability to feel pain.

The year 2020 was the worst year for opioid overdose in the United States. For example, there were over 80,000 deaths in 2020 with opioids as the majority contributor to overdoses. Each year, there are about 90 million people on pain medication. Due to the ease by which addiction occurs, opioid prescriptions as a controlled substance are heavily regulated by the DEA (Drug Enforcement Agency). Consequently, the DEA works extensively with medical professionals to manage controlled substance distributions.

Currently, there are between 2-3 million people in the United States who have OUD (Opioid Use Disorder). FDA approved medications for OUD are correlated with positive outcomes for patients and society. The provision of these FDA approved medications by certified healthcare providers is referred to as Medication Assisted Treatment (MAT). MAT has proven to reduce overdose deaths related to OUD. Unfortunately, only a small percentage of those people are actually being treated through a MAT. In an effort to help people experiencing OUD, the DEA allows medical professionals to treat these patients with approved FDA medications. That being said, there is still a need for oversight to prevent against “diversion control,” which occurs when a patient sells his/her pills on a black market.

Currently, the DEA allows a medical professional to have only up to 275 MAT patients. In order to treat people experiencing OUD, a medical professional is required to obtain a waiver to provide MAT. Federal regulations were implemented per the Drug Addiction Treatment Act of 2000 (DATA 2000), which allows qualifying healthcare providers to obtain a federal waiver to prescribe Schedule III and V opioids (FDA-approved) for OUD treatment in an office-based opioid treatment (OBOT) setting. The DEA will grant the medical professional a waiver or permission so the medical professional can manage those MAT patients. Such waivers or programs are controlled, not only in the number of patients enrolled but also in record keeping, auditing, and other factors. For example, one requirement imposed on medical professionals who provide MAT services is that of requiring their patients to perform a routine or periodic pill count procedure in support of the DEA Diversion Control Division mission to prevent and detect suspicious activity related to the diversion or dispersion of controlled pharmaceuticals (substances) from legitimate sources. Moreover, the US Food and Drug Administration (FDA) only has a finite number of medications approved to prescribe specifically for OUD MAT.

Generally, a pill count procedure involves the medical professional meeting with the patient and the two of them verifying how many pills the patient has at any given time. For example, FIG. 1 shows an example of a patient 100 who has been prescribed a number of pills 105. The patient 100 and medical professional pair may be tasked with counting the pills.

By counting the number of pills, the medical professional can gauge whether illicit activity is occurring with the pills (e.g., overdosing, underdosing, or perhaps selling the pills). Traditionally, the pill counting process involved the medical professional either meeting the patient in-person or meeting the patient over a video call. Time was then used for the medical professional and the patient to review and count the pills. The medical professional would then have to generate records, which may be subject to an audit by the DEA. Such pill counting techniques expend a significant amount of the medical professional's time, thereby diverting the professional from other activities he/she could be engaged in. Accordingly, there are a number of disadvantages in the fields related to medical monitoring of end usage items that can be addressed.

The subject matter claimed herein is not limited to embodiments that solve any disadvantages or that operate only in environments such as those described above. Rather, this background is only provided to illustrate one exemplary technology area where some embodiments described herein may be practiced.

BRIEF SUMMARY

Embodiments disclosed herein relate to systems, devices, and methods for tracking a progression of a therapeutic procedure that is performed by a patient.

In some embodiments, a notification is received from a server computer system. This notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure. After receipt of the notification, a user interface (UI) is displayed. This UI has a particular visual layout that is designed to facilitate the tracking process. The visual layout includes a first field that, after being selected, causes instructions to be displayed to the patient to acquire an image that documents a specific activity, which is included as a part of the tracking process. The image will also be imported after the first field is selected. The layout further includes a second field that, when selected, operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity. The layout also includes a submit field. In response to the submit field being selected within the UI, the embodiments access a secret key that de-identifies the patient. The embodiments also encrypt the accessed secret key and the image. As a consequence, encrypted data is generated. The embodiments then transmit the encrypted data to the server computer system.

Some embodiments receive a notification from a server computer system. The notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure. After receipt of the notification, the embodiments display UI. The UI has a particular visual layout designed to facilitate the tracking process, as described above. The embodiments trigger an image analysis phase of the tracking process. The image analysis phase includes analyzing characteristics of the image to determine whether the image is a false image of a different image. The embodiments also trigger a review phase of the tracking process. The review phase includes causing a machine learning algorithm to perform object segmentation on the image to identify objects of a specific type within the image. The review phase also includes counting the objects of the specific type such that a number of the objects of the specific type is determined. The review phase further includes computing an initial estimate as to how many objects of the specific type the patient should have possessed. The review phase also includes performing a comparison between the initial estimate and the determined number. The review phase also includes triggering transmission of an alert in response to a determination that the comparison indicates that the determined number is above or below the initial estimate by a threshold value. In response to the submit field being selected within the UI, the embodiments access a secret key that de-identifies the patient. The embodiments also encrypt the secret key and the image such that encrypted data is generated. The encrypted data is then transmitted to the server computer system.

This Summary is provided to introduce a selection of concepts in a simplified form that are further described below in the Detailed Description. This Summary is not intended to identify key features or essential features of the claimed subject matter, nor is it intended to be used as an aid in determining the scope of the claimed subject matter.

Additional features and advantages will be set forth in the description which follows, and in part will be obvious from the description, or may be learned by the practice of the teachings herein. Features and advantages of the invention may be realized and obtained by means of the instruments and combinations particularly pointed out in the appended claims. Features of the present invention will become more fully apparent from the following description and appended claims, or may be learned by the practice of the invention as set forth hereinafter.

BRIEF DESCRIPTION OF THE DRAWINGS

In order to describe the manner in which the above-recited and other advantages and features can be obtained, a more particular description of the subject matter briefly described above will be rendered by reference to specific embodiments which are illustrated in the appended drawings. Understanding that these drawings depict only typical embodiments and are not therefore to be considered to be limiting in scope, embodiments will be described and explained with additional specificity and detail through the use of the accompanying drawings in which:

FIG. 1 illustrates a scenario where a patient is counting his pills.

FIG. 2 illustrates an example architecture structured to facilitate a pill counting procedure.

FIG. 3 illustrates how a reminder can be displayed on a client device in order to prompt the user of the client device to count his/her pills.

FIG. 4 illustrates pills that are to be counted.

FIG. 5 illustrates a scenario in which the user is using his client device, which includes a camera, to take a picture of the pills.

FIG. 6 illustrates the generation and transmission of a unique data file, which is structured to include an image, a secret key, and metadata associated with the pill count.

FIG. 7 illustrates how machine learning (ML) can be used to perform object segmentation in order to facilitate automatic counting and recognition of pills.

FIG. 8 illustrates a server-side user interface (UI) that is usable to track patients and patients' pill counts.

FIG. 9 illustrates an example UI structured to track properties of a health care provider.

FIG. 10 illustrates an example UI structured to track properties of a patient and that patient's prescription details.

FIG. 11 illustrates an example UI structured to monitor dosage history.

FIG. 12 illustrates an example UI structured to schedule and trigger pill count reminders.

FIG. 13 illustrates an example UI structured to track adherence to a medication plan.

FIG. 14 illustrates an example UI structured to enable a health care provider to generate a reminder message for transmission to a patient.

FIG. 15 illustrates an example UI showing various properties of a pill count record.

FIG. 16 illustrates a summary of a pill count event.

FIG. 17 illustrates various client-side example UIs.

FIG. 18 illustrates a client-side dosage UI.

FIG. 19 illustrates a client-side pill count UI.

FIG. 20 illustrates an example flow chart for facilitating a pill counting procedure.

FIG. 21 illustrates a flowchart of an example method for tracking a therapeutic process.

FIG. 22 illustrates various acts associated with an image analysis phase and with a review phase.

FIG. 23 shows an example architecture designed to enable the system to track a therapeutic process.

FIG. 24 illustrates a scenario where a patient is attempting to take an image of an image.

FIG. 25 illustrates how a machine learning algorithm can perform numerous different actions to track the patient's progress in performing the therapeutic procedure.

FIG. 26 illustrates one example of how the machine learning algorithm can analyze an image to determine whether it is a false image (i.e. an image of an image).

FIG. 27 illustrates an example of an assessment that can be performed to help track the patient's progress.

FIG. 28 shows various interactions with a patient's electronic health record.

FIG. 29 illustrates an example computer system configured to perform any of the disclosed operations.

DETAILED DESCRIPTION

Embodiments disclosed herein relate to systems, devices, and methods for tracking a progression of a therapeutic procedure that is performed by a patient.

In some embodiments, a notification is received from a server computer system. This notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure. After receipt of the notification, a user interface (UI) is displayed. This UI has a particular visual layout that is designed to facilitate the tracking process. The visual layout includes a first field that, after being selected, causes instructions to be displayed to the patient to acquire an image that documents a specific activity, which is included as a part of the tracking process. Selection of the first field also leads to the image being imported. The layout further includes a second field that, when selected, operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity. The layout also includes a submit field. In response to the submit field being selected within the UI, the embodiments access a secret key that de-identifies the patient. The embodiments also encrypt the accessed secret key and the image. As a consequence, encrypted data is generated. The embodiments then transmit the encrypted data to the server computer system.

Some embodiments receive a notification from a server computer system. The notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure. After receipt of the notification, the embodiments display UI. The UI has a particular visual layout designed to facilitate the tracking process, as described above. In response to the submit field being selected within the UI, the embodiments trigger an image analysis phase of the tracking process. The image analysis phase includes analyzing characteristics of the image to determine whether the image is a false image of a different image. The embodiments also trigger a review phase of the tracking process. The review phase includes causing a machine learning algorithm to perform object segmentation on the image to identify objects of a specific type within the image. The review phase also includes counting the objects of the specific type such that a number of the objects of the specific type is determined. The review phase further includes computing an initial estimate as to how many objects of the specific type the patient should have possessed. The review phase also includes performing a comparison between the initial estimate and the determined number. The review phase also includes triggering transmission of an alert in response to a determination that the comparison indicates that the determined number is above or below the initial estimate by a threshold or buffer value. In response to the submit field being selected within the UI, the embodiments access a secret key that de-identifies the patient. The embodiments also encrypt the secret key and the image such that encrypted data is generated. The encrypted data is then transmitted to the server computer system.

Examples of Technical Benefits, Improvements, and Practical Applications

The following section outlines some example improvements and practical applications provided by the disclosed embodiments. It will be appreciated, however, that these are just examples only and that the embodiments are not limited to only these improvements.

The disclosed embodiments bring about substantial, material, and practical improvements to the support of federal regulations governing the pill counting field. As described earlier, traditional systems were laborious and consumed a substantial amount of time on the medical professional's part. The disclosed embodiments, on the other hand, significantly speed up the process, thereby enabling the medical professional to focus his/her efforts on other matters.

The embodiments also provide a unique UI designed to help users better interact with the computer system. As described earlier, it is often the case that patients may have an addiction to opioids. The specific visual layout of the disclosed user interface helps patients calmly and efficiently navigate the various screens, thereby improving the user's experience. The server-side UIs also help medical professionals quickly navigate the various fields to certify or validate the pill count metrics.

The embodiments provide additional benefits to the technical field through the use of specially trained machine learning (ML) algorithms. Such algorithms are trained not only to recognize and differentiate pills but also to provide an accurate verification regarding the pill count. Using the disclosed ML algorithms helps medical professionals in a substantial way by automating the counting process using an intelligent algorithm.

The embodiments also improve the art by providing a broad array of mitigation operations that may be performed in the event of suspicious activity. These mitigation operations can help reduce the stress levels of patients (e.g., by simply requiring an additional pill count as opposed to worrying the patient with enhanced probing questions or queries). Additionally, these mitigation operations help medical professionals better manage situations involving suspicious activity. Accordingly, the disclosed embodiments bring about numerous beneficial and practical applications to the technical field.

As will be described in detail throughout this disclosure, the embodiments track a progression of a therapeutic procedure that is performed by a patient. Notably, tracking a procedure is almost as important as performing the procedure itself. That is, progress over time can be determined only if the process itself is tracked. As a result, the tracking process should actually be considered as an integral part of the therapeutic procedure. Therefore, the disclosed embodiments should be interpreted broadly enough to also be viewed as covering methods and techniques for administering and implementing therapeutic procedures and practices because the tracking processes are an essential aspect to the therapy that is being administered. These and other benefits will be described in more detail throughout the remaining portion of this disclosure.

Example Architecture for Facilitating Pill Counting

Having just described a few of the benefits provided by the disclosed embodiments, attention will now be directed to FIG. 2, which illustrates an example architecture 200 designed to facilitate the improved processes for pill counting. The discussion surrounding architecture 200 is provided as an initial high-level overview of some of the operations performed by the disclosed embodiments. Further details regarding specific operations will be provided later in subsequent figures.

As shown, architecture 200 includes a client device 205. Client device 205 may be any type of device, including portable devices, stationary devices, mobile devices, handheld devices, wearable devices, smart phones, and so forth, without limit.

Architecture 200 also includes a server 210 operating in a cloud 215 environment. Server 210 may be any type of server computing device, without limit.

The client device 205 is shown as executing a client-side application or “app” 220. As will be discussed in more detail later, app 220 is designed to surface a user interface (UI) structured to improve how the user interacts with the client device 205 in order to perform pill counting. Further details on this app 220 will be provided later.

The server 210 is shown as managing and/or communicating with a data repository, as shown by data storage 225. The data storage 225 includes a database that manages or maintains patient information, such as prescriptions, dosage amounts, pill counts, and other information.

In accordance with the disclosed principles, the embodiments provide full isolation between medical professional records and between patient records. That is, instead of using a multi-tenancy platform, the embodiments instantiate a new instance of a database for each medical professional. Using new instances for each medical professional prevents cross contamination or leakage between data sets. In some cases, the database is encrypted. Different types of databases may be used, such as Microsoft SQL Server, MySQL, Oracle, and so on.

The provider database has a unique “site” code for that provider or medical professional. The provider is able to enter provider, patient, and prescription data into the database. Additionally, the system is able to generate an activation code per patient and an internal secret key per patient relative to that medical professional's database. Such information may be used to initiate a patient record and to update that record when new data is made available. Further details on that information will be provided later.

With the architecture 200, the server 210 is able to trigger the sending of a text message 230 via a telecommunications network 235. That is, when a scheduled pill counting event occurs, the server 210 is able to trigger the sending of the text message 230 to the client device 205. The text message 230 can operate as a notification to the user of the client device 205. The notification informs the user that he/she should initiate the pill counting procedure on the client-side. As will be described in more detail later, medical professionals are provided with high levels of customizability and can schedule when pill counting events are to occur.

Other notification techniques may also be used instead of a text message (e.g., an SMS message). Indeed, emails, phone calls, or any other notification technique may be used.

When the client device 205 receives the notification (e.g., the text message 230), the notification operates as a trigger informing the user that he/she should use the app 220 to begin the pill counting procedure. The results of the pill counting procedure (to be discussed later) are then transmitted back to the server 210 in the form of the message 240. This message 240 may include a picture of the pills, a secret key used to de-identify the user, and other metadata describing the pill counting event/procedure. Further details on that message 240 will be provided later.

In any event, the message 240 is transmitted from the client device 205 to the server 210. In some implementations, the message 240 (e.g., perhaps an encrypted data file) is directed to a URL with a related medical professional's database site code associated with the server 210, and an API intercepts the message 240, parses the message 240, and then generates a new record in the data storage 225. In this regard, the message 240 can be directed to a URL associated with a server computer system, and an API can be configured to intercept the message 240.

Therefore, in such instances, the message 240 may be transmitted using the IP protocol. In some implementations, other protocols or transmission techniques may be used, such as text messages over a telecommunications network. Accordingly, different transmission techniques may be utilized to provide the results of the pill counting procedure to the server 210.

With this architecture 200, patients and medical personnel are able to collaborate and communicate with one another. Additionally, this architecture 200 provides a robust platform for counting pills and for providing an auditable asset (e.g., pill) management process.

FIG. 3 shows a client device 300, which is representative of the client device 205 of FIG. 2. FIG. 3 also shows an initial notification 305, which is operating as an alert to inform the user of the client device 300 that he/she should count pills. The notification 305 is an example of the text message 230.

In response to receiving the notification 305, the user will then search for and gather his/her controlled substance pills, as shown by the pills 400 of FIG. 4. It may be the case that the user/patient has multiple different controlled substances. Consequently, the user will be tasked with gathering those pills so he/she can count them. In some cases, the notification received from the server computer system is received via a SMS text message.

FIG. 5 shows one example process for counting pills. In particular, FIG. 5 shows a client device 500, which is representative of the client devices mentioned thus far. This client device 500 includes one or more cameras, as shown by camera 505. The user is able to use the camera 505 to generate an image of his pills 510, as shown by the image 515. This image 515 operates as a trackable digital record detailing how many pills the user currently has in his possession. This image 515 will be provided to the server mentioned earlier, as shown in FIG. 6. In some cases, the image of the pills is embedded with the date and time when the pill counting procedure was performed.

FIG. 6 shows an image 600, which is representative of the image 515 from FIG. 5. In accordance with the disclosed principles, it is desirable to maintain the user's confidentiality. Indeed, various government regulations mandate that patient information should not be inadvertently disclosed. As a result, the embodiments utilize a so-called secret key 605, which is designed to “de-identify” the user in the event that the user's data is intercepted when being transmitted from the client device to the server.

The secret key 605 may be any combination of numbers, letters, symbols, and so forth. In some cases, the secret key 605 may be a hash number that is generated based on user information, such as perhaps information extracted from the user's client device (e.g., IP address, MAC address, SIM card code, etc.), information about the user (e.g., name, birth date, social security number, phone number, address, etc.), and so on. That is, this information may be used to generate a hash number that is used to de-identify the user.

In some cases, on the server side, the server (e.g., server 210 from FIG. 2) is able to derive the secret key 605 in order to also identify the user. That is, the server may include the same information mentioned above and can use that information to generate the secret key 605. When the server receives the secret key 605, the server can use its existing information to derive secret keys. Whichever patient's information is successfully used to generate the secret key 605 will then inform the server which patient sent the image 600.

Below is an example of an activation code, secret key, and a site code. In some cases, the activation code and the secret key uniquely define a particular patient record communicated between the server database and the mobile application, while the site code uniquely defines the destination medical professional's database. Messages or records containing these pieces of information may be encrypted and later decrypted when the various transactions are processed.

-   -   ActivationCode=925ca271981     -   SecretKey=b0aac0bffd2376d1895af6e26fd651     -   SiteCode=pfarmd

Metadata 610 is also collected. Metadata 610 describes circumstances, parameters, or characteristics surrounding the pill counting event. Examples of metadata 610 include, but certainly are not limited to, information about the client device (e.g., make, model, phone number, etc.), information as to when the user started the pill counting process (e.g., date, time, etc.), information as to how long it took the user to complete the pill counting process, and even location information (e.g., GPS coordinates). The metadata 610 may also include a number provided by the patient, where the number indicates the number of pills counted by the patient.

Other metadata information may include a picture of the user who is performing the pill counting process (e.g., the camera can also be used to capture an image of the user). Capturing an image of the user can help mitigate detecting suspicious activity related to the diversion of controlled pharmaceuticals (substances) from legitimate sources on the part of the user. In some cases, the application is designed to simultaneously use both a front-facing camera and a back-facing camera. For instance, the front-facing camera can record the face of the user while the back-facing camera can record the pills. These images, or perhaps even a video stream, can be generated simultaneously with one another and then perhaps stitched together to form a single image (e.g., with one image being on the left hand side and the other image being on the right hand side, or vertical alignment or any other alignment). In some cases, the images can be thumbnail images that have been stitched together. In some cases, a timestamp is added to the image(s) themselves and perhaps flattened so as to become an integrated part of the image(s).

That is, various images can be included as parts of a composite image. For instance, a first image can be generated by a back-facing camera of the client computer system, where the first image is of the pills. A front-facing camera of the client computer system can generate a second image of the user while the back-facing camera generates the first image. The composite image is then generated and includes both the first image and the second image such that a likeness of both the user and the pills are displayed in the same composite image.

Stated differently, the image can be included as a part of a composite image that is at least partially generated by a back-facing camera of the client computer system. A front-facing camera of the client computer system generates a second image of the user while the back-facing camera generates the image. The composite image includes both the image and the second image. As a consequence, a likeness of both the user and the pills are displayed in the same composite image.

Additional information includes the user's fingerprint, which can be obtained via a touchscreen of the client device. As such, the metadata can include a fingerprint of the user and/or any other biometric data of the user. Additional information includes how long it took the user between the time when the initial reminder or alert was received and/or acknowledged and the time when the user actually started to count the pills.

A prolonged period of time between when the alert was received and when the pill counting process began may indicate suspicious activity on the part of the user. For example, prolonged periods of time may indicate that the user is gathering pills from other sources in an attempt to falsify his actual pill count. Therefore, including this information in the metadata 610 may be beneficial to identify suspicious activity. That is, the metadata can include a time counter reflecting an amount of time that elapsed from a time when the notification or text message was received to a time when a response was provided (e.g., an encrypted data file was sent to a server computer system).

In some instances, the metadata 610 may include a text or voice message from the user indicating why a delay in counting occurred or indicating some other potentially relevant information associated with the process. In some instances, the metadata 610 includes a voice recording that operates as verification the user is who he/she is asserting to be. That is, the metadata can include a voice recording of the user, where the voice recording operates as verification of the user's identity. Accordingly, the metadata 610 may include a wealth of information pertaining to the pill counting event.

In some cases, the metadata 610 includes location information, such as GPS information. The location information can also be used to help identify suspicious activity. For example, if the patient is a U.S. citizen, but the location data indicates the patient is currently in Madagascar, then that location may (potentially, though not necessarily) reflect some other entity has hacked the user's account. In this regard, the metadata can include GPS location data indicating a location where the image was generated or where the client computer system is located. The embodiments are able to detect whether a user is hiding his/her location via a VPN (virtual private network). If so, then the embodiments can instruct the user to temporarily turn off the VPN.

In accordance with the disclosed principles, the embodiments wrap or contain the image 600, the secret key 605, and the metadata 610 in a data file 615. This file 615 is then encrypted, as shown by encryption 620. Any number of encryption techniques may be used. In some embodiments, a SHA-1 (e.g., “Secure Hash Algorithm 1”) cryptographic hash function is used to encrypt the file 615. The encrypted data file is eventually transmitted to the server computer system. In some cases, transmitted the encrypted data file is performed using the IP protocol.

In some cases, the image 600 is individually encrypted, the secret key 605 is individually encrypted, and the metadata 610 is individually encrypted. These encrypted pieces of information are then included in the data file 615. The file 615 may then be encrypted, thereby providing two layers of encryption.

In some cases, the image 600, the secret key 605, and the metadata 610 are included in the file 615 in an unencrypted form, and then the file 615 as a whole is encrypted. In any event, different encryption methods may be used, including but not limited to, symmetric encryption methods, asymmetric encryption methods, and hashing.

The client device prepares the file 615 and then transmits the file 615 to the server 625, which is representative of the servers discussed thus far. In some cases, the server 625 is associated with a URL 630, and the file 615 is directed to that URL 630 with a related medical professional's database site code.

The server 625 includes or is associated with an API 635. The API 635 receives or intercepts the file 615 directed to the URL 630. The API 635 decrypts the file 615, parses the image 600, the secret key 605, and the metadata 610 from the file 615, and then generates a new record for the user/patient associated with that file 615. Recall, each medical professional has his/her own instance of the database, which is identified by a unique site code and which is used to track and monitor information. As such, a new record is generated within that professional's database instance.

In some implementations, the server is able to harness machine learning (ML) to assist the medical professional in reviewing the imagery and other data provided by the client device. FIG. 7 is illustrative.

FIG. 7 shows a file 700, which is representative of the file 615 from FIG. 6. File 700 includes an image 705 of the user's pills.

The server computer system includes or has access to a ML engine 710 configured or trained to perform object segmentation 715. In this case, the ML engine 710 is trained to recognize and count pills. Optionally, the ML engine 710 is further trained to not only recognize pills but also to recognize which specific type a pill is. For example, the ML engine 710 can be trained to differentiate pill types based on size, color, shape, text on the pill, and so on.

Any type of ML algorithm, model, or machine learning may be used herein. As used herein, reference to “machine learning” or to a ML model may include any type of machine learning algorithm or device, neural network (e.g., convolutional neural network(s), multilayer neural network(s), recursive neural network(s), deep neural network(s), dynamic neural network(s), etc.), decision tree model(s) (e.g., decision trees, random forests, and gradient boosted trees), linear regression model(s) or logistic regression model(s), support vector machine(s) (“SVM”), artificial intelligence device(s), or any other type of intelligent computing system. Any amount of training data may be used (and perhaps later refined) to train the machine learning algorithm to dynamically perform the disclosed operations. Optionally, the ML engine 710 may be instantiated on the client device. In some cases, the ML engine 710 is instantiated in the cloud but is usable by the client device.

The ML engine 710 operates on the image 705 to segment and differentiate the different pill objects, as shown by object(s) 720. In this scenario, object(s) 720 include object 725, object 730, object 735, and object 740. Each of the objects 725-740 constitutes a different type of pill. Additionally, the ML engine 710 counts the number of pills, as shown by count 745.

By way of example, the ML engine 710 has recognized four different types of pills, including a large elliptical pill (object 725), a rectangular pill (object 730), a circular pill (object 735), and a small elliptical pill (object 740). That is, the ML engine 710 can perform object segmentation on an image to identify pills based on one or more of a shape, color, or size of the pills.

The ML engine 710 also recognizes the presence of 8 total pills in the image 705. The ML engine 710 is able to include the pill count 745 and the object(s) 720 in the database record that was generated earlier. The pill count 745 can be used as an auditable record.

Example Server-Side User Interfaces

Attention will now be directed to FIGS. 8 through 16, which illustrate various server-side user interfaces that may be presented to a medical professional accessing a patient's data on the server-end. FIGS. 17 through 19 illustrate various client-side user interfaces that may be presented to a patient on the client-end.

FIG. 8 shows an initial server UI 800, which operates as an initial dashboard for a user (e.g., a medical professional) accessing patient records from the server. Of course, the server-side application can be configured to require various levels of authentication in order to access the underlying data.

The dashboard or server UI 800 in FIG. 8 includes a number of options that are made available to the user. These options include, but are not limited to, options for verifying pill counts, options to generate reports, options for intaking new patients, and options for activating accounts.

FIG. 9 shows a provider properties 900 UI. This UI includes information that a user enters in order to activate or initiate an account. Some of the properties that are entered include whether the user is an “Authorized Medical Director.” Other properties include DEA waiver limits, provider name, DEA number, address, and contact information.

Medical professionals treat patients. As such, the server-side application includes a UI structured to receive patient information, as shown by the patient properties 1000 UI in FIG. 10. The patient properties 1000 UI includes fields to enter a patient's name, date of birth, age, gender, and contact information.

The server-side application also includes a prescription properties 1005 UI, which enables a provider to enter information regarding which prescriptions a patient has for his/her medication assisted treatment. Such information may include the name of the drug, the dosage amounts or levels, the refill rate, and so on. Any information about a drug or about the patient's usage of that drug can be entered in the prescription properties 1005 UI. Such information is maintained in the server database mentioned earlier.

Building on that understanding, the server-side application may include a dosage history 1100 UI, as shown in FIG. 11. This UI lists which dosage amounts a particular patient has for any given prescription. Additionally, the UI can list when a particular dosage was last taken and how much, as transmitted from the client device.

FIG. 12 shows a pill count scheduler 1200 and a date list 1205. The pill count scheduler 1200 enables a medical professional to establish a frequency by which a patient is to submit a pill count to the medical professional. In FIG. 12, the pill count scheduler 1200 shows that for this scenario, the patient is to submit pill counts every quarter, or every three months (totaling four times a year). This scheduler is fully customizable and is used to trigger when reminder notifications (e.g., perhaps an SMS text message) will be sent to the patient.

The date list 1205 lists the specific dates (and potentially even times) when the pill count event was triggered and/or completed. That is, for each pill count event, there may be two log entries; one log entry providing a timestamp as to when the reminder or notification was initially transmitted and one log entry providing a timestamp as to when the pill count event information was finally received by the server. In some cases, a third log entry may be included, where the third entry lists the timestamp when the medical professional reviewed the pill count information. Yet another log entry may be provided in the event that additional follow-up is requested by the medical professional, such as in a case where the medical professional requests an additional pill count be conducted or other mitigation activities. Further details on such scenarios will be provided later.

FIG. 13 shows a medication adherence 1300 UI. In addition to counting pills, some embodiments additionally record or maintain logs as to when a patient takes or consumes his/her pills. The medication adherence 1300 UI lists which days a patient took his/her pills using one visual format (e.g., different shading or highlighting) and lists which days the patient neglected to take his/her pills using a different visual format. The medication adherence 1300 UI may include other information, such as the percentage of adherence (i.e. as a percentage, how often does the patient follow his/her schedule), a consecutive days counter (i.e. how many days in a row did the patient take the pills or did the patient miss taking the pills), and even a days missed indication (i.e. reflecting how many days the patient should have taken pills but did not). The medication adherence 1300 UI can include various filtering operations to filter views based on medicine type, patient name, and so on.

As discussed previously, the embodiments are able to transmit a message (e.g., perhaps an SMS message) to notify the patient that it is time to perform a pill count. The actual message that is delivered to the patient is fully customizable, as shown by the message generator 1400 of FIG. 14.

Optionally, the embodiments are able to automatically generate a default reminder message to instruct the patient to perform a pill count. Alternatively, a customized message may be provided. Such messages can be automatically generated and/or transmitted based on a determined schedule or reminder frequency, which can be determined, updated, or otherwise customized by the medical professional. That is, the embodiments are able to send a notification, which can be an automatically generated notification that is triggered for dissemination or transmission based on a determined frequency for performing a pill counting procedure.

FIG. 15 shows a pill count properties 1500 UI. This UI includes a thumbnail version of the image that the client device captured. Upon selecting the image, a full resolution version of the image can be displayed. The pill count properties 1500 UI also includes the patient's information, which is linked with the secret key mentioned earlier. The UI also includes additional metadata, such as when the pill count was conducted (e.g., a timestamp reflecting a time when the image was generated or when the pill counting procedure occurred, which timestamp can be included in metadata), the number of pills remaining, the types of pills observed, and so on. Some of the metadata is generated on the client side, such as the time, date, potentially the pill count, GPS data, and so on. Some of the metadata can be generated on the server side, such as the thumbnail image, results obtained from the ML engine performing object recognition on the image, and so on.

It is often beneficial to provide a quick summary dashboard or view of the patient's information. The pill count summary 1600 UI of FIG. 16 provides this quick view. In particular, the pill count summary 1600 UI provides a high level overview regarding the number of pills that were counted for each scheduled event.

In some cases, the summary view preemptively lists the number of pill counting events that are to occur in a given time period (e.g., perhaps four per year) and fills in the information when that information is eventually obtained. By way of example, the scenario shown in FIG. 16 shows four pill counting events, but only one of them has actually occurred (e.g., the first quarter showing 16 pills). In this scenario, the remaining three instances have not yet occurred, but the quick summary window still displays an indication for those events.

In some instances, the quick summary window (i.e. the pill count summary 1600 UI) shows information only for events that have already actually occurred. The window can refrain from showing data for events that have not yet occurred. After those events occur, the window is updated to reflect the new information.

Client-Side User Interfaces

The preceding discussion focused on various server-side user interfaces. FIGS. 17, 18, and 19 provide various client-side user interfaces. These UIs are displayed on the client devices mentioned earlier. Additionally, these UIs are designed in a manner to help OUD patients easily navigate the various fields.

FIG. 17 shows three separate user interfaces, including client device UI 1700, profile information 1705, and features 1710. The client device UI 1700 is an initial interface that may be provided to a patient in order to access or activate his/her account. Each patient may be provided with an activation code to initially establish an account. Each medical professional also has his/her own database instance, which is often referred to as a “site.” The patient enters his/her activation code and the medical professional's site code, both of which may be received from the medical professional and/or from an activation wizard.

That is, in some cases, the patient initially enters his/her activation code and the site code. The activate button optionally calls a URL associated with the medical professional's database instance. The process of calling the URL can create the activation interface file from the server and can then download information into that patient's mobile app in order to access or activate an account. The loaded data includes: patient name, provider information (e.g., name/address/telephone number), and the prescription information (e.g., drug name/start date/daily doses/starting pill quantity).

The patient can then confirm his/her personal information in the profile information 1705 UI. This UI is able to receive the name, address, doctor, contact information, medication information, and so on of the patient. After confirming this information, the user/patient has an account with the medical professional's site or database.

The features 1710 UI enables the patient to perform a number of different operations. One operation involves tracking when the patient takes his/her medication, as shown by the selectable option entitled “Take My Medication.” Another operation involves conducting and submitting a pill count, as shown by the selectable option entitled “Submit Pill Count.” Another operation is a self-assessment, which helps the patient gauge his/her progress in how the medicine is administered and managed.

FIG. 18 shows a resulting window that may be displayed when the patient selects the “Take My Medication” option. Specifically, the dosage UI 1800 is displayed. This UI enables the patient to track when, where, and how he/she takes a pill. The UI also allows the patient to enter which specific pill he/she is taking along with the specific dosage (e.g., 1 pill, 1.25 pills, etc.). Selecting the “Take Dosage” option triggers the generation of a new record in the patient's log within the medical professional's database for medication adherence reports, as was discussed earlier.

FIG. 19 shows a resulting window that may be displayed when the patient selects the “Submit Pill Count” option. Specifically, the pill count UI 1900 is displayed. This UI enables the patient to track or count the number of pills he/she has remaining. Often, the patient navigates to this UI after receiving a notification from the database that a new pill count event is to occur.

The UI has a visual layout that includes a number of data entry fields. The placement and arrangement of these fields is designed to help the patient easily and intuitively conduct the pill count event.

Notice, the UI includes a field for selecting which medication is to be counted. In some instances, a specific type of medication is to be counted while in other instances all types of medications are to be counted at the same time. Optionally, the ML algorithm can identify, sort, differentiate, and count any number of different types of pills based on the provided image. The UI also includes a date and time field, which may be automatically populated. The date and time field can reflect the start date and time of the pill counting procedure, the end date and time of the pill counting procedure, a duration of the pill counting procedure, and/or a combination of any of the above.

The UI also includes an option for the patient to enter a manually counted number reflecting the number of pills the patient has. Alternatively, an automatically computed count of the number of pills may be determined based on a captured image.

Additionally, the UI includes an option for the patient to use the device's camera to snap a picture of the pills that are being counted. A thumbnail version or a full resolution version of the resulting image can be displayed in the pill count UI 1900. Notice, the image is displayed simultaneously and proximately to the pill count indicator and to the other fields mentioned above.

The pill count UI 1900 also includes a certification field. This field, when checked or otherwise selected, operates as a certification that the information provided by the patient is true and accurate. The certification is also displayed simultaneously and proximately to the image and to the pill count indicator.

These various pieces of information are then included in the “metadata” that was mentioned earlier. Additional data may also be included in the metadata, such as an image of the user, the GPS coordinates, the user's secret key, and so on.

After the certification has been checked, the pill count UI 1900 provides a “Submit” selectable option. When selected, this option or UI element triggers the generation and transmission of the data file mentioned earlier to be sent to the server, where the data file includes the user's secret key, the image, and the metadata. Notably, prior to transmission, the data file is encrypted using the various techniques mentioned earlier. Accordingly, the various client-side UIs described herein are designed to help facilitate the pill counting process. Such UIs are presented as having specific visual layouts designed to help the patient with the pill counting process.

Example Flow Processes

The following discussion now refers to a number of methods and method acts that may be performed. Although the method acts may be discussed in a certain order or illustrated in a flow chart as occurring in a particular order, no particular ordering is required unless specifically stated, or required because an act is dependent on another act being completed prior to the act being performed.

Attention will now be directed to FIG. 20, which illustrates a process flow 2000 that generally describes some of the operations involved with facilitating a pill count event. As shown in FIG. 20, the process flow 2000 involves two actors, or entities, namely: a “Server Database Application” and a “Mobile Device.” The Server Database Application is representative of an application executing on the servers mentioned herein. Similarly, the Mobile Device is representative of the client devices mentioned herein. These two entities communicate over the Internet, a local area network, any other type of wide area network, and/or via a telecommunications network.

Initially, act 2005 involves compiling information from an input provider, such as a medical professional. This information includes the medical professional's information as well as potentially information about that professional's patients and the medications the patients are taking. In some cases, as shown in act 2010, the information is obtained over the Internet and is received from the client device (i.e. the mobile device).

In act 2015, a patient activates his/her account and establishes a set of one or more records within the medical professional's database instance. In act 2020, a reminder message, such as perhaps in the form of an SMS, is delivered to the mobile device to remind the patient to take his/her medication.

Act 2025 involves the patient logging a dosage of his/her medication. The dosage history or parameters are transmitted over the Internet, as shown by act 2030, where the server database application then logs or loads the dosage history into a new record for the patient (act 2035). Optionally, a medication adherence report can be generated for the medical professional to review and consider, as shown in act 2040.

When a new patient account is activated, the medical professional can use the server database application to generate a pill count schedule, as shown by act 2045. The schedule dictates or outlines the frequency by which the patient is to perform a pill count. When the scheduled time arrives for a patient's pill count, the server database application (as shown in act 2050) is able to automatically generate and automatically transmit a reminder message to the mobile device. Optionally, as shown by act 2055, the message may be in the form of an SMS message or email. Alternatively, the message may be transmitted over the Internet or even as a voice message. In act 2060, the mobile device receives the message and displays it in the form of a prompt for the patient to view.

In response to receiving the message, the patient is now informed that it is time to perform a pill count. The results of that pill count are later transmitted or submitted, as shown by act 2065. Those results are wrapped or contained in the data file mentioned earlier. In some instances, the data file is transmitted over the Internet, as shown by act 2070.

The server database application receives the data file and loads the information into its database, as shown by act 2075. In act 2080, the server database application validates the pill count metrics. Such validation can occur using ML to verify that the number entered by the patient is consistent with the number of pills identified using the ML algorithm executed against the image. In some cases, the final arbitration regarding the accuracy and authenticity is performed on the server-side.

In some implementations, the server database application, as shown in act 2085, executes the ML algorithm on the image and determines a pill count number. This auto-generated number is then be compared against the number provided by the client, as shown by act 2085. In act 2090, a pill count summary report is generated and may be provided to the medical professional.

Accordingly, some embodiments include a client computer system configured to surface (i.e. or “display”) a user interface (UI) for facilitating a pill counting procedure. The system receives a notification from a server computer system, where the notification includes information instructing that a pill count is to be performed. In response to the notification, the system surfaces (i.e. “displays,” or “renders”) the UI to a user of the client computer system. This UI has a particular visual layout designed to facilitate the pill counting procedure. For example, the particular visual layout includes (1) a timestamp field indicating a date and time when the pill counting procedure is or was performed (e.g., a start time, end time, duration, or any of the above), (2) a pill count field indicating how many pills the user has, (3) an image field displaying an image of the pills the user has, (4) a certification field that, when selected, operates as a certification on the part of the user that the pill count is accurate, and (5) a submit field/button.

In response to the submit field being selected, the system generates an encrypted data file comprising (1) a secret key that de-identifies the user, (2) the image of the pills, and (3) metadata describing conditions associated with the pill count. The system then transmits the encrypted data file to the server computer system. In some cases, the notification that was previously received from the server computer system is transmitted via a different network than a network used to transmit the encrypted data file to the server computer system. For instance, the notification can be sent via a telecommunications network in the form of an SMS text message while the encrypted data file can be sent via the Internet or some other broadband network.

The server computer system is also configured to facilitate the pill counting procedure. For example, in response to a scheduled pill counting reminder being triggered, the server system transmits a notification to the client computer system. The notification includes information instructing a user of the client computer system to initiate a pill counting event.

Later, the server system receives, from the client computer system, an encrypted data file comprising (1) a secret key that de-identifies the user of the client computer system, (2) an image of pills the user has, and (3) metadata describing conditions associated with the pill counting event. The server system decrypts the encrypted data file to extract the secret key, the image, and the metadata. Based on the secret key, the server system identifies the user within a database managed by the server computer system and generates a new log record for the user within the database. The new log record comprises the image and the metadata. The server system also generates a report detailing the new log record. That report may be provided to a medical professional.

Mitigation Operations

In some implementations, various mitigation operations can be performed when suspicious data is received. For example, it may be the case that a discrepancy occurs between the pill count number determined by the ML algorithm and the pill count number that was provided by the patient. As another example, the ML algorithm can recognize and identify the various pills in the image and can determine that the pills in the image are not the pills that were originally prescribed to the patient (e.g., based on differences in size, color, shape, etc.).

As yet another example, the disclosed embodiments may determine suspicious activity is afoot if a large amount of time (i.e., a time surpassing a predefined threshold) elapses between the time when the initial reminder message is delivered to the patient and the time when the pill count is actually performed. Another suspicious activity may relate to the clarity of the image generated by the image (e.g., perhaps the lighting is too low or too high or perhaps the image resolution is too low or perhaps the angle is off). The embodiments are able to detect any number of activities and determine whether or not they amount to a suspicious activity.

Based on the determination that the received data is suspect, the embodiments are able to perform any number of mitigation operations in an attempt to resolve the suspiciousness. For example, suppose the quality of the received image is below a predetermined quality threshold. In such instances, the embodiments can automatically trigger a message to the patient instructing the patient to re-perform the pill count process. In some implementations, the message may include a statement that a higher quality image should be generated. In some implementations, the message may indicate which specific aspect of the image is deficient (e.g., the resolution is too low, the lighting is not adequate, etc.). This message can then be used to trigger a recount.

In some instances, the mitigation operations may involve notifying the medical professional. For example, when the computed pill count is different than the patient-provided pill count, the embodiments can transmit a message to a device owned by the medical professional to inform the professional of an apparent inconsistency. The professional can then review the materials to gauge how to respond. In some cases, the medical professional may determine that another pill count is warranted. In such situations, an option is provided to the professional to enable the professional to transmit a message to the patient informing the patient a re-do of the pill count is required. Accordingly, various different mitigation operations may be performed.

Audit Assurances

Via use of the disclosed architecture, the embodiments provide a robust platform that is easily auditable and that helps ensure compliance with government regulations. The platforms and UIs are easily scalable and customizable to account for changes in regulations.

Additionally, when an audit occurs, the medical professional can easily call up the database and show the auditing authorities all of the information that is needed for the audit. In this regard, the disclosed systems provide a robust and secure platform to help protect medical professionals and even patients when audits are performed.

Accordingly, implementations of the present invention include systems, methods, and computer program products that provide efficiency in the medical relationship, with particular regard to monitoring of end usage items, such as prescription medication.

For example, in some implementations, a client computer system configured to surface a user interface (UI) that facilitates a pill counting procedure can include one or more processors, and one or more computer-readable hardware storage devices that store instructions that are executable by the one or more processors. Upon execution, the instructions can cause the client computer system to at least receive a notification from a server computer system, where the notification includes information instructing that the pill counting procedure is to be performed. The system also surfaces (e.g., in response to the notification) the UI to a user of the client computer system, where the UI has a particular visual layout designed to facilitate the pill counting procedure. Optionally, the particular visual layout includes: (i) a timestamp field indicating a date and time when the pill counting procedure is performed; (ii) a pill count field indicating how many pills the user has remaining at that time; (iii) an image field displaying an image of the pills the user has; (iv) a certification field that, when selected, operates as a certification on a part of the user that the pill count is accurate; and (v) a submit field/button. The system can further be configured so that, in response to the submit field being selected, the system generates an encrypted data file comprising a secret key that de-identifies the user, a site code that identifies a database of a medical professional, the image of the pills, and metadata describing conditions associated with the pill count. The system can then transmit the encrypted data file to the server computer system.

In some embodiments, a server computer system is configured to facilitate a pill counting procedure. For instance, in response to a scheduled pill counting reminder being triggered, the server can transmit a notification to a client computer system. The notification includes information instructing a user of the client computer system to initiate a pill counting event. The server receives (e.g., from the client computer system) an encrypted data file comprising a secret key that de-identifies the user of the client computer system, a side code that identifies a database of a medical professional, an image of pills the user has, and metadata describing conditions associated with the pill counting event. The server then decrypts the encrypted data file to extract the secret key, the image, and the metadata. Based on the secret key, the server identifies the user within a database managed by the server computer system. The server also generates a new log record for the user within the database, where the new log record comprises the image and the metadata. Additionally, the server generates a report detailing the new log record.

Tracking Progression of a Therapeutic Process

Attention will now be directed to FIG. 21, which illustrates a flowchart of an example method 2100 for tracking a progression of a therapeutic procedure that is performed by a patient. As an example, the therapeutic procedure can be the patient taking medication to control and suppress cravings related to an opioid addiction. Similarly, the tracking process can optionally include one or more pill counting activities that are performed over a determined period of time. One will appreciate, however, how the therapeutic procedures can be any type of therapy. Examples of such therapy include, but are not limited to, any type of physical rehabilitation, alcohol rehabilitation, mental rehabilitation, and so on. Any tracking mechanism or process can also be performed.

Initially, method 2100 includes an act (act 2105) of receiving a notification from a server computer system (e.g., server 210 from FIG. 2). The notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure.

After receipt of the notification, act 2110 includes displaying a user interface (UI) (e.g., perhaps the pill count UI 1900 from FIG. 19). As described previously, this UI has a particular visual layout designed to facilitate the tracking process. Notably, the visual layout includes a first field (e.g., the “Picture Selected” field in the Pill Count UI 1900). After being selected, the first field causes instructions to be displayed to the patient, where these instructions inform the patient on how to acquire an image that documents a specified activity, which is included as a part of the tracking process. Only a currently-generated image can be used. That is, the embodiments prevent users from uploading images that were generated at a prior time (i.e. that is not a contemporaneous image with the current process). In some cases, the embodiments do not allow the mobile app user to upload an existing image in order to lower the probability of using an older fraudulent image. As such, the instructions can inform the user on how to use a camera to generate a new image. The instructions can also inform the user how to import an image from another device, such as perhaps an independent camera detached from the user's smart device, where that image was generated contemporaneously with the current procedure.

The specified activity can be a pill counting process/procedure in which a number of pills the patient currently is in possession of is to be determined and is to be documented via an image. Selection of the first field also leads to the image being imported into the application hosting the UI. That is, selection of the first field can optionally trigger the generation of a new image (which is then uploaded). To illustrate, FIG. 19 showed how an image of pills was imported into the application.

In some implementations, the image can be generated by the client device (e.g., a smart device or smart phone), which might be configured to include multiple different cameras. For instance, the image can be generated by a back-facing camera of the client computer system. This image can then be considered as a “first” image that is included in a so-called “composite” image. The composite image might further include a “second” image, which can be generated by a front-facing camera of the client computer system and which can capture a likeness of the patient. In some cases, the second image is generated in response to the first image being generated. For instance, generation of the second image can be triggered in response to the first image being generated. In some cases, the first and second images are generated substantially simultaneously with one another. In some cases, the first image is generated prior in time to the second image. In some cases, the second image is generated prior in time to the first image.

The UI also includes a second field (e.g., the checkbox in FIG. 19). When selected, this second field operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity. The UI also includes a submit field (e.g., the “Submit” button in FIG. 19).

In response to the submit field being selected within the UI, act 2115 in FIG. 21 includes accessing a secret key that de-identifies the patient. In act 2120, the accessed secret key and the image are encrypted, thereby causing encrypted data to be generated. In act 2125, the encrypted data is then transmitted to the server computer system. Such operations were discussed in more detail previously.

FIG. 22 illustrates a few additional acts that can be included in method 2100. For instance, in response to the submit field being selected within the UI, there can be an act (act 2200) of triggering an image analysis phase of the tracking process. In some cases, act 2200 is triggered when the image is uploaded, and the triggering of act 2200 might not be dependent on the selection of the submit field.

Regardless, this image analysis phase includes analyzing characteristics of the image to determine whether the image is a false image of a different image. In other words, the embodiments perform various operations in order to determine whether the patient took an image of another image, such as perhaps one that was taken at a previous time in order to falsely give the impression that the patient is properly following the prescribed therapeutic process (e.g., taking the correct dosage levels for his/her pills). Further details on this aspect will be provided later.

FIG. 22 illustrates another act (act 2205) of triggering a review phase of the tracking process. The review phase includes an act (act 2210) of causing a machine learning algorithm to perform object segmentation on the image to identify objects of a specific type (e.g., perhaps pills) within the image.

The review phase further includes an act (act 2215) of counting the objects of the specific type (e.g., causing the machine learning algorithm or the processor to count the number of identified pills). As a result, a number of the objects of the specific type is determined.

In parallel or perhaps in serial with acts 2210 and/or 2215, there is an act (act 2220) of computing an initial estimate as to how many objects of the specific type the patient should have possessed. For instance, the embodiments can determine the initial prescription amount the patient was provided as well as the daily dosage level the patient should be taking. The embodiments can also determine how many days have elapsed since the prescription was filled. Based on these factors, the embodiments can derive the number of pills the patient should likely have in his/her possession. In some cases, a buffer can also be established in the event that the patient took more or less pills based on need.

As an example, suppose the patient was prescribed 3 months' worth of pills at a rate of about 2 pills per day (e.g., about 90 days times 2 pills=180 pills). Further suppose a pill counting procedure was triggered after 60 days. The calculation would indicate that the patient should have about 60 pills remaining. The embodiments can determine a buffer value, such that a range of remaining pills can be determined. For instance, the buffer value can be a particular number of pills or perhaps a percentage of the total value. As an example, suppose the buffer value was 10 pills. The acceptable range would then be 50 pills to 70 pills. If the identified number of pill (i.e. the number detected in the image) is within that range, then the embodiments can determine that the patient is likely properly following the therapeutic procedure.

The review phase can further include an act (act 2225) of performing a comparison between the initial estimate and the determined number. In act 2230, the embodiments optionally trigger an alert in response to a determination that the comparison indicates that the determined number is above or below the initial estimate by a threshold value, or rather, by the buffer value. If the comparison indicates the determined number is within the calculated range, then it might be the case that no alerts are sent.

Various other operations can be included in the tracking process, such as an analysis of the image. The analysis can include checking to determine whether the image is a false image of a different image. In some implementations, checking to determine whether the image is the false image of the different image can include determining whether the false image includes (i) suspect pixel skew, (ii) suspect pixel concentration(s), (iii) suspect two dimensional pixel characteristics, (iv) suspect pixel stretch, (v) suspect glare, or (vi) suspect border pixels. Optionally, a machine learning algorithm can check to determine whether the image is the false image of the different image. These aspects will all be discussed in more detail to follow.

FIG. 23 illustrates an example architecture 2300 in which the methods (e.g., method 2100) can be performed. Architecture 2300 includes a client device 2305 and a server 2310, which communicate with each other over a network 2315. The server 2310 is able to transmit a notification 2320 to the client, where the notification 2320 relates to a tracking process 2325. The tracking process 2325 monitors the patient's progress in performing a therapeutic procedure 2330.

In response to the notification 2320 being received at the client device 2305, the client device 2305 displays the user interface 2335 having the visual layout 2340 mentioned previously. The user interface 2335 includes the various fields, one of which can trigger various instructions 2345 to be displayed to a user on how to track a particular activity 2350 (e.g., a pill counting activity) included in the tracking process 2325.

As mentioned earlier, the embodiments are able to perform an image analysis phase that includes analyzing characteristics of an image to determine whether the image is a false image of a different image. FIG. 24 is illustrative of such a scenario. Specifically, FIG. 24 shows an existing picture 2400 of pills. This existing picture 2400 may be a picture that was taken at a previous time or it may be a picture of somebody else's pills. In this scenario, the patient is attempting to submit a fraudulent report or image in an attempt to assert that he/she has been properly following the therapeutic procedure.

Here, the patient is using his/her camera to generate an image of an image, where the image of the image is referred to as a false image 2410. As described previously, the client device may have a front-facing camera 2405 and a back-facing camera 2415. Various methodologies are provided herein to identify and address scenarios where a patient is attempting to generate a false image 2410.

FIG. 25 shows an embodiment that can be implemented within the architecture 2300 of FIG. 23. Specifically, FIG. 25 shows an image 2500 that is fed as input into a machine learning (ML) engine 2505. The image can be any image, including the false image 2410.

In accordance with the disclosed principles, the ML engine 2505 is able to perform an analysis 2505A on the image to determine various characteristics of the image as well as to determine whether the patient is accurately following his/her therapeutic procedure.

For instance, the ML engine 2505 can perform an analysis based on the number of estimated pills the patient should have, as shown by estimated pills remaining 2510. Here, the ML engine 2505 can determine when a patient's prescription was filled and can also determine a current time when a pill counting process (or another other tracking process) is performed. The time period 2515 reflects the amount of time that has transpired between those two events.

The ML engine 2505 can also determine the fill quantity 2520, or rather, the number of pills the patient was initially prescribed. The ML engine 2505 can also determine the patient's daily dosage 2525. Generally, the patient will fall within one of three phases, as shown by phase 2530. These phases include an induction phase, a stabilization phase, and a maintenance phase. Notably, the tracking process is performed only during the maintenance phase.

The induction phase refers to a scenario where a patient is initially meeting with a medical professional on a regular basis. During this phase, the patient and the professional are working together to identify which types of medications as well as what dosages the patient should follow. The types of medication and the dosages can vary significantly during this phase, so a pill count is not typically performed during this phase.

The stabilization phase occurs after the induction phase and before the maintenance phase. During the stabilization phase, the patient is meeting with the professional less often, such as perhaps every 30 days. While in this phase, the patient and the professional are working together in an effort to verify that the prescribed medication and amounts are adequate for the patient's needs.

In the maintenance phase, the patient and the professional are meeting even less often. In this phase, there is an assumption that the medication and dosage amounts have been resolved and understood. In this phase, the pill counts can be performed. Those pill counts can be conducted in a random manner and can be performed a certain number of times per year, such as three or four times per year. Further details on scheduling will be provided later.

The embodiments are able to analyze the image to determine how many pills are in the image, as represented by detected pills 2535. An algorithm 2540 can then be used to determine whether the number of detected pills 2535 matches or coincides with the estimated number that was determined based on the various factors listed previously. In some cases, a buffer 2545 can be implemented to specify an acceptable range. If the number of detected pills is within the range, then the patient is likely properly following his/her therapeutic procedure. That is, the initial estimate can further include or factor in a buffer value associated with the initial estimate in order to provide an acceptable range for the number of pills that are detected.

In this sense, the embodiments are able to estimate how many pills a patient should have at any given time. To recap, after receiving data (e.g., perhaps encrypted data), the system is able to calculate a so-called “Expected Pill Count Remaining” by performing a number of operations. One such operation involves calculating the number of days between the last prescription fill date and the receipt date of the data (e.g., perhaps referred to as “days expired”). Another operation involves calculating (e.g., based on the “days expired”) how many pills should have been consumed by the patient by multiplying the number of times per day the pills should be consumed by the number of “days expired” (perhaps referred to as “expected pills consumed”). Another operation then involves subtracting the “expected pills consumed” from the starting prescription pill quantity (e.g., perhaps referred to as the “Expected Pill Count Remaining”). This number should generally be represented by the number of pills detected in the image.

Stated differently, the tracking process can include computing an initial estimate regarding how many pills the patient should currently be in possession of. Here, the initial estimate is dependent on (i) an initial prescription fill quantity that was provided to the patient, (ii) a dosage level prescribed to the patient, and (iii) a time period that elapsed between a time when the initial prescription pill amount was provided to the patient and a time when the tracking process was triggered. The tracking process can further include (i) determining the number of pills the patient currently is in possession of based on a review of the image, (ii) comparing the number of pills against the initial estimate, which optionally includes the buffer value, and (iii) in response to determining the number of pills does not align with the initial estimate and buffer value, triggering an alert to be sent to a medical professional. If the numbers sufficiently align, then no alert need be sent.

The ML engine 2505 is also able to analyze any images the patient takes of his/her pills, as shown by pixel characteristics 2550. The analysis includes reviewing or analyzing various attributes or characteristics of the image, including characteristics such as pixel concentration 2555 (i.e. the number of observed pixels in a given unit of area of the image), 2D/3D 2560 characteristics (i.e. whether the pixels reflect an underlying 2D object or a 3D object), pixel skew 2565 (i.e. distortions of the pixels), pixel stretch 2570 (i.e. stretching of the pixels), glare 2575 (i.e. unaccounted for additional lighting aspects included in the image), and attributes identified for border pixels 2580 (i.e. those pixels that exist near the edge regions of an image as opposed to near the center area of the image). The ellipsis 2585 illustrates how other characteristics can be considered as well.

The ML engine 2505 analyzes the image in an attempt to determine whether the patient is trying to submit a falsified record or image to the system (i.e. a false image). For instance, the ML engine 2505 can utilize artificial intelligence to evaluate an image submitted thereto, and the ML engine 2505 can compare pixels in the center of the image with pixels in the corners (e.g., border pixels). If the corners of the image are pinched, skewed, or stretched as compared to the pixels in the center of the image, then the ML engine 2505 can determine that the submitted image was actually a picture of a 2D object (e.g., another picture) as opposed to a picture of a 3D object (e.g., such as the actual pills).

FIG. 26 shows an example of one attribute that the ML engine 2505 can identify and analyze. Specifically, FIG. 26 shows an original picture 2600. For instance, if the patient is attempting to be fraudulent, then the patient may have taken an image of his/her pills prior to perhaps selling a number of them illegally. The pixels in the original picture 2600 will show the pills as having 3D converted to 2D characteristics. On the other hand, suppose a pill count is triggered, and the patient attempts to take a picture of the original picture 2600. The picture of picture 2605 is a separate image that is taken of the original picture 2600. As a result of taking this false picture, the pixels in the picture of picture 2605 will not accurately illustrate the 3D to 2D characteristics of the original pills because the picture of picture 2605 is actually now being taken of a 2D object (i.e. the flattened original picture 2600). Consequently, various skewing effects 2610 will be present in the picture of picture 2605. The ML engine mentioned previously is able to review the picture of picture 2605 and identify these skewing effects 2610 and determine that that uploaded image is a false image.

Assessments

FIG. 27 shows another feature of the disclosed embodiments. Specifically, the embodiments are able to provide options for a patient to complete an assessment 2700 to document his/her progress in completing the therapeutic procedure. As an example only, the assessment 2700 can be a DSM 5 health evaluation.

The assessment 2700 can be self triggered 2705 (i.e. the patient chooses to complete one at a time of his/her own choosing) or it can be triggered by a doctor, as shown by doctor triggered 2710. That is, the tracking process mentioned earlier can include triggering performance by the patient to complete a self-assessment reflecting the progress of the patient in performing the therapeutic procedure. In some cases, the assessment 2700 can be performed periodically based on an established schedule, as shown by scheduled 2715 (e.g., perhaps every “x” number of months).

Regardless of how the assessment 2700 is triggered, the embodiments are able to compile the patient's answers to the assessment 2700. Those answers are then encrypted, as shown by encryption 2720, and transmitted over a network 2725 to a server 2730. The server 2730 can then perform an initial analysis 2735 on the result to determine whether any action 2740 should be pursued.

For instance, if the server 2730 analyzes the answers and determines (based on the answers) that the user is feeling extreme depression or feelings of pain, then an alert can be transmitted to a medical professional who might then contact the patient to learn further what is happening. Another action 2740 could possibly be the temporary issuance of additional medication. Indeed, any type of action can be performed, as mandated by good medical practice.

Electronic Health Records

The disclosed embodiments beneficially provide various tools for enabling the disclosed systems to interact with a patient's electronic health record (EHR). That is, the embodiments can provide pathways, APIs, portals, or any other tunneling techniques for integrating with a patient's EHR in an effort to help the patient progress through his/her therapeutic procedure. The disclosed embodiments can pull and push information to the EHR (i.e. bidirectional interactions).

FIG. 28 shows a client device 2800, which is representative of the client devices mentioned herein. The client device 2800 can interact with, generate, and/or upload various pieces of data (e.g., patient data 2805, visit data 2810, prescription data 2815, and lab data 2820) to the patient's EHR 2825 in order to build a comprehensive picture of the patient's medical health history.

The patient data 2805 can include any information related to the patient, including any assessments the patient might perform. The visit data 2810 can document a patient's interactions with a medical professional when those two meet or interact. The prescription data 2815 details characteristics about the patient's prescriptions, as described herein. The lab data 2820 can document lab work that has been completed for the patient, such as perhaps the patient's blood work.

All of these various pieces of information can optionally be accessed by the client device 2800 and can be included in the patient's EHR 2825. Such operations can help the user progress through his/her treatment plan. The EHR 2825 can also be auditable to enable other authorities (e.g., perhaps the DEA) to make sure the patient is not abusing drugs.

Also, it may be the case that the EHR 2825 can be used to obtain special DEA waivers that might be needed for the patient to be prescribed controlled substances. These waivers can then be accessed electronically, perhaps even at the pharmacy when the patient attempts to pick up his/her prescription. Accordingly, the disclosed embodiments provide for various touchpoints (e.g., the four listed previously) into a patient's EHR 2825. The tracking process can further include uploading information into the patient's EHR, and the information can be one of the patient data, the doctor visit data, the prescription data, or even the lab data.

The disclosed embodiments bring about numerous benefits and advantages to the technical field. Furthermore, as recited earlier, therapy not only includes the administration of drugs or rehabilitative activities to a patient but it also includes tracking the patient's progress over time. Inasmuch as the disclosed embodiments perform various tracking operations, the embodiments should also be interpreted broadly enough to be considered as methods of therapeutic treatment.

Example Computer/Computer Systems

Attention will now be directed to FIG. 29 which illustrates an example computer system 2900 that may include and/or be used to perform any of the operations described herein. Computer system 2900 may take various different forms. For example, computer system 2900 may be embodied as a tablet, a desktop, a laptop, a mobile device, or a standalone device, a server, a client device, a wearable device, or any other type of computing system. Computer system 2900 may also be a distributed system that includes one or more connected computing components/devices that are in communication with computer system 2900.

In its most basic configuration, computer system 2900 includes various different components. FIG. 29 shows that computer system 2900 includes one or more processor(s) 2905 (aka a “hardware processing unit”), input/output 2910, one or more camera(s) 2915, and storage 2920. The one or more camera(s) 2915 are illustrated using a dotted box because it may be the case that not all computing systems have a camera.

Regarding the processor(s) 2905, it will be appreciated that the functionality described herein can be performed, at least in part, by one or more hardware logic components (e.g., the processor(s) 2905). For example, and without limitation, illustrative types of hardware logic components/processors that can be used include Field-Programmable Gate Arrays (“FPGA”), Program-Specific or Application-Specific Integrated Circuits (“ASIC”), Program-Specific Standard Products (“ASSP”), System-On-A-Chip Systems (“SOC”), Complex Programmable Logic Devices (“CPLD”), Central Processing Units (“CPU”), Graphical Processing Units (“GPU”), or any other type of programmable hardware.

I/O 2910 includes any type of input or output device. Examples of such devices include, but are not limited to, any type of touchscreen, keyboard, mouse, speaker, microphone, and so forth.

Camera(s) 2915 can include any type of camera. For instance, camera(s) 2915 can include any type of visible light camera or monochrome camera.

As used herein, the terms “executable module,” “executable component,” “component,” “module,” or “engine” can refer to hardware processing units or to software objects, routines, or methods that may be executed on computer system 2900. The different components, modules, engines, and services described herein may be implemented as objects or processors that execute on computer system 2900 (e.g. as separate threads).

Storage 2920 may be physical system memory, which may be volatile, non-volatile, or some combination of the two. The term “memory” may also be used herein to refer to non-volatile mass storage such as physical storage media. If computer system 2900 is distributed, the processing, memory, and/or storage capability may be distributed as well.

Storage 2920 is shown as including executable instructions (i.e. code 2925). The executable instructions represent instructions that are executable by the processor(s) 2905 (or perhaps even the ML engine) of computer system 2900 to perform the disclosed operations, such as those described in the various methods.

The disclosed embodiments may comprise or utilize a special-purpose or general-purpose computer including computer hardware, such as, for example, one or more processors (such as processor(s) 2905) and system memory (such as storage 2920), as discussed in greater detail below. Embodiments also include physical and other computer-readable media for carrying or storing computer-executable instructions and/or data structures. Such computer-readable media can be any available media that can be accessed by a general-purpose or special-purpose computer system. Computer-readable media that store computer-executable instructions in the form of data are “physical computer storage media” or a “hardware storage device.” Computer-readable media that carry computer-executable instructions are “transmission media.” Thus, by way of example and not limitation, the current embodiments can comprise at least two distinctly different kinds of computer-readable media: computer storage media and transmission media.

Computer storage media (aka “hardware storage device”) are computer-readable hardware storage devices, such as RANI, ROM, EEPROM, CD-ROM, solid state drives (“SSD”) that are based on RANI, Flash memory, phase-change memory (“PCM”), or other types of memory, or other optical disk storage, magnetic disk storage or other magnetic storage devices, or any other medium that can be used to store desired program code means in the form of computer-executable instructions, data, or data structures and that can be accessed by a general-purpose or special-purpose computer.

Computer system 2900 may also be connected (via a wired or wireless connection) to external sensors (e.g., one or more remote cameras) or devices via a network 2930. For example, computer system 2900 can communicate with any number devices, servers, or cloud services to obtain or process data. In some cases, network 2930 may itself be a cloud network. Furthermore, computer system 2900 may also be connected through one or more wired or wireless networks 2930 to remote/separate computer systems(s) that are configured to perform any of the processing described with regard to computer system 2900.

A “network,” like network 2930, is defined as one or more data links and/or data switches that enable the transport of electronic data between computer systems, modules, and/or other electronic devices. When information is transferred, or provided, over a network (either hardwired, wireless, or a combination of hardwired and wireless) to a computer, the computer properly views the connection as a transmission medium. Computer system 2900 will include one or more communication channels that are used to communicate with the network 2930. Transmissions media include a network that can be used to carry data or desired program code means in the form of computer-executable instructions or in the form of data structures. Further, these computer-executable instructions can be accessed by a general-purpose or special-purpose computer. Combinations of the above should also be included within the scope of computer-readable media.

Upon reaching various computer system components, program code means in the form of computer-executable instructions or data structures can be transferred automatically from transmission media to computer storage media (or vice versa). For example, computer-executable instructions or data structures received over a network or data link can be buffered in RAM within a network interface module (e.g., a network interface card or “NIC”) and then eventually transferred to computer system RANI and/or to less volatile computer storage media at a computer system. Thus, it should be understood that computer storage media can be included in computer system components that also (or even primarily) utilize transmission media.

Computer-executable (or computer-interpretable) instructions comprise, for example, instructions that cause a general-purpose computer, special-purpose computer, or special-purpose processing device to perform a certain function or group of functions. The computer-executable instructions may be, for example, binaries, intermediate format instructions such as assembly language, or even source code. Although the subject matter has been described in language specific to structural features and/or methodological acts, it is to be understood that the subject matter defined in the appended claims is not necessarily limited to the described features or acts described above. Rather, the described features and acts are disclosed as example forms of implementing the claims.

Those skilled in the art will appreciate that the embodiments may be practiced in network computing environments with many types of computer system configurations, including personal computers, desktop computers, laptop computers, message processors, hand-held devices, multi-processor systems, microprocessor-based or programmable consumer electronics, network PCs, minicomputers, mainframe computers, mobile telephones, PDAs, pagers, routers, switches, and the like. The embodiments may also be practiced in distributed system environments where local and remote computer systems that are linked (either by hardwired data links, wireless data links, or by a combination of hardwired and wireless data links) through a network each perform tasks (e.g. cloud computing, cloud services and the like). In a distributed system environment, program modules may be located in both local and remote memory storage devices.

The present invention may be embodied in other specific forms without departing from its characteristics. The described embodiments are to be considered in all respects only as illustrative and not restrictive. The scope of the invention is, therefore, indicated by the appended claims rather than by the foregoing description. All changes which come within the meaning and range of equivalency of the claims are to be embraced within their scope. 

What is claimed is:
 1. A client computer system configured to track a progression of a therapeutic procedure that is performed by a patient, said client computer system comprising: one or more processors; and one or more computer-readable hardware storage devices that store instructions that are executable by the one or more processors to cause the client computer system to at least: receive a notification from a server computer system, wherein the notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure; after receipt of the notification, display a user interface (UI), wherein the UI has a particular visual layout designed to facilitate the tracking process, and wherein the particular visual layout includes: a first field that, after being selected, (i) causes instructions to be displayed to the patient to acquire an image that documents a specified activity, which is included as a part of the tracking process and (ii) results in the image being imported, a second field that, when selected, operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity, and a submit field; in response to the submit field being selected within the UI, access a secret key that de-identifies the patient; encrypt the accessed secret key and the image such that encrypted data is generated; and transmit the encrypted data to the server computer system.
 2. The client computer system of claim 1, wherein the tracking process includes an analysis of the image, and wherein the analysis of the image includes checking to determine whether the image is a false image of a different image.
 3. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect pixel skew.
 4. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect pixel concentrations.
 5. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect two dimensional pixel characteristics.
 6. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect pixel stretch.
 7. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect glare.
 8. The client computer system of claim 2, wherein checking to determine whether the image is the false image of the different image includes determining whether the false image includes suspect border pixels.
 9. The client computer system of claim 2, wherein a machine learning algorithm checks to determine whether the image is the false image of the different image.
 10. The client computer system of claim 1, wherein: the image is generated by a back-facing camera of the client computer system, the image is a first image that is included in a composite image, the composite image further includes a second image, which is generated by a front-facing camera of the client computer system and which captures a likeness of the patient, and the second image is generated in response to the first image being generated.
 11. A method for tracking a progression of a therapeutic procedure that is performed by a patient, said method comprising: receiving a notification from a server computer system, wherein the notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure; after receipt of the notification, displaying a user interface (UI), wherein the UI has a particular visual layout designed to facilitate the tracking process, and wherein the particular visual layout includes: a first field that, after being selected, (i) causes instructions to be displayed to the patient to acquire an image that documents a specified activity, which is included as a part of the tracking process and (ii) results in the image being imported, a second field that, when selected, operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity, and a submit field; in response to the submit field being selected within the UI, accessing a secret key that de-identifies the patient; encrypting the accessed secret key and the image such that encrypted data is generated; and transmitting the encrypted data to the server computer system.
 12. The method of claim 11, wherein the specified activity is a pill counting procedure in which a number of pills the patient currently is in possession of is to be determined and is to be documented by the image.
 13. The method of claim 12, wherein: the tracking process includes computing an initial estimate regarding how many pills the patient should currently be in possession of, and the initial estimate is dependent on: an initial prescription fill quantity that was provided to the patient, and a dosage level prescribed to the patient, and a time period that elapsed between a time when the initial prescription fill quantity was provided to the patient and a time when the tracking process was triggered.
 14. The method of claim 13, wherein the initial estimate further includes a buffer value associated with the initial estimate.
 15. The method of claim 14, wherein the tracking process includes: determining the number of pills the patient currently is in possession of based on a review of the image; comparing the number of pills against the initial estimate, which includes the buffer value; and in response to determining the number of pills does not align with the initial estimate and buffer value, triggering an alert to be sent to a medical professional.
 16. The method of claim 12, wherein the therapeutic process includes an induction phase, a stabilization phase, and a maintenance phase, and wherein the tracking process is performed only while the patient is in the maintenance phase of the therapeutic process.
 17. The method of claim 12, wherein a machine learning algorithm performs object segmentation on the image to count the number of pills documented by the image.
 18. A method for tracking a progression of a therapeutic procedure that is performed by a patient, said method comprising: receiving a notification from a server computer system, wherein the notification relates to a tracking process designed to monitor a progress of the patient in performing the therapeutic procedure; after receipt of the notification, displaying a user interface (UI), wherein the UI has a particular visual layout designed to facilitate the tracking process, and wherein the particular visual layout includes: a first field that, after being selected, (i) causes instructions to be displayed to the patient to acquire an image that documents a specified activity, which is included as a part of the tracking process and (ii) results in the image being imported, a second field that, when selected, operates as a certification on a part of the patient to indicate that the image accurately reflects the specified activity, and a submit field; in response to the submit field being selected within the UI, triggering an image analysis phase of the tracking process, wherein the image analysis phase includes analyzing characteristics of the image to determine whether the image is a false image of a different image; triggering a review phase of the tracking process, wherein the review phase includes: causing a machine learning algorithm to perform object segmentation on the image to identify objects of a specific type within the image; counting the objects of the specific type such that a number of the objects of the specific type is determined; computing an initial estimate as to how many objects of the specific type the patient should have possessed; performing a comparison between the initial estimate and the determined number; and triggering transmission of an alert in response to a determination that the comparison indicates that the determined number is above or below the initial estimate by a threshold value; in response to the submit field being selected within the UI, accessing a secret key that de-identifies the patient; encrypting the secret key and the image such that encrypted data is generated; and transmitting the encrypted data to the server computer system.
 19. The method of claim 18, wherein the tracking process further includes triggering performance by the patient to complete a self-assessment reflecting the progress of the patient in performing the therapeutic procedure.
 20. The method of claim 18, wherein the tracking process further includes uploading information to an electronic health record of the patient, and wherein the information is one of patient data, doctor visit data, prescription data, or lab data. 